SEARCH RESULTS
 
Showing 1-10 of 457 records
 
Expand article

Coding Spyware and Malware for Hire

The Article has images
2008-07-22 03:52:14 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware and spyware for hire services. What used to be a situation where the malware authors would code and then start promoting a piece of malware including features that he thinks his potential customers would want by generalizing a cybercriminal's needs, is today's "listening to the customer" win-win situation that they've reached already...
 
Tags: malware, malware author, malware authors, malware binaries, malware attacks, ftp, ftp user, collects, malware industry
 
 
 
 
Expand article

The United Nations Serving Malware

The Article has images
2008-04-23 10:13:00 by HASH0x8b31c98 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware infected page, and with a reason since both the malicious URl and the injection are still active. According to WebSense This mass injection is remarkably similar to the attack we saw earlier this month. When a user browses to a compromised site, the injected JavaScript loads a file named 1.js which is ho sted on...
 
Tags: malware, attack, malware attack, anti-malware vendor, media malware gang, htm, nihaorr1, load nihaorr1, attack tactic
 
 
 
 
Expand article

A Localized Bankers Malware Campaign

The Article has images
2008-03-25 14:59:06 by HASH0x8b6136c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Malware campaign that I exposed in November 2007, in this post I'll assess another targeted, but also localized to Portuguese campaign with a decent degree of cyber deception applied. It appears that the latest round has been spammed two days ago, but expanding their ecosystem reveals evidence of more bankers malware on behalf of the same...
 
Tags: malware, bankers malware campaign, malware malware, malware campaigns, malicious malware, banker malware, bankers malware, malware authors, campaign
 
 
 
 
Expand article

Quality and Assurance in Malware Attacks

The Article has images
2008-04-02 11:49:20 by HASH0x8b57b3c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware authors themselves. In fact, the low detection rate is often pointed out as the quality of the crypting service by the authors themselves while advertising their malware or crypting services. And when a popular piece of malware known as Shark introduced a built-in VirusTotal submission to verify the low detecting rate of the newly...
 
Tags: malware authors start, malware authors, malware, authors, services, malware services, start, malware product, malware campaign
 
 
 
 
Expand article

New DIY Malware in the Wild

The Article has images
2008-04-29 16:06:55 by HASH0x8b1f28c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware is getting pitched as one with low detection rate due to its proprietary nature , following the logic that based on the fact that few people will have it, it would somehow remain undetected for a longer period of time. The applied logic is however, excluding the possibility of used to recently purchased good as a bargain to obtain or...
 
Tags: diy malware, malware, diy malware droppers, do-it-yourself malware, novice malware coder, malware authors, source malware, malware loader, multi-feature malware crypter
 
 
 
 
Expand article

Detection Rates for Malware in the Wild

The Article has images
2008-04-30 04:58:01 by HASH0x8af6948 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Malware Threat Center is currently generating automated tracking reports in the following sections Most Aggressive Malware Attack Source and Filters Most Effective Malware-Related Snort Signatures Most Prolific BotNet Command and Control Servers and Filters Most Observed Malware-Related DNS Names Most Effective Antivirus Tools Against New...
 
Tags: malware, signatures based malware, malware authors, source malware, malware threat center, malware binaries, binaries, vendors, vendors infrastructure
 
 
 
 
Expand article

Cached Malware Embedded Sites

The Article has images
2007-12-16 18:18:26 by HASH0x8a09e44 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware embedded sites who were cleaned before they could be analyzed, mainly popular sites who get crawled several times daily. However, Yahoo's and MSN's search engines, with MSN providing Archive.org type of historical crawling content, have been an invaluable resource in providing the actionable historical intelligence in the form of what...
 
Tags: sites, sites wrongly, web sites, malware, malicious site, site, single site offers, sites notification services, popular sites
 
 
 
 
Expand article

Yet Another Massive Embedded Malware Attack

The Article has images
2008-02-27 11:42:39 by HASH0x8b05fe8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware serving domains - buytraffic.cn/in.cgi?11 is currently embedded at couple of hundred sites and forums across the web. And just like the many previous such examples, the process is automated to the very last stage. Repeated requests expose the entire domains portfolio, where once the live exploit is served with the help of a javascript...
 
Tags: attack, malware attack, malware, free malware cocktails, anti-malware vendor, media malware gang, massive, entire domains portfolio, domains
 
 
 
 
Expand article

The Neosploit Malware Kit Updated with Snapshot ActiveX Exploit

The Article has images
2008-07-15 17:18:32 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware exploitation kit? Now that's interesting given that there are other modified versions of the publicly available malware kit empowered with exploits as they get released, the single most logical move a administrator of such kit would do is diversity the exploits set as often as possible, keeping it up to date - like they do. ThreatCon...
 
Tags: neosploit malware kit, malware kit, nuclear malware kit, kit, metaphisher malware kit, icepack malware kit, nuclear grabber kit, apophis kit, neosploit exploit kit